CVE-2020-10731

CWE-284Improper Access ControlCWE-12206 documents5 sources
Severity
9.9CRITICAL
EPSS
0.3%
top 48.48%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Redhat Openstack Platform
Timeline
PublishedJul 31
Latest updateMay 24

Description

A flaw was found in the nova_libvirt container provided by the Red Hat OpenStack Platform 16, where it does not have SELinux enabled. This flaw causes sVirt, an important isolation mechanism, to be disabled for all running virtual machines.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:HExploitability: 3.1 | Impact: 6.0

Affected Packages2 packages

NVDredhat/openstack_platform15.0, 16.0, 16.1+2

🔴Vulnerability Details

2
GHSA
GHSA-9m56-29jp-mr7j: A flaw was found in the nova_libvirt container provided by the Red Hat OpenStack Platform 16, where it does not have SELinux enabled2022-05-24
CVEList
CVE-2020-10731: A flaw was found in the nova_libvirt container provided by the Red Hat OpenStack Platform 16, where it does not have SELinux enabled2020-07-31

📋Vendor Advisories

1
Red Hat
openstack-tripleo-heat-templates: No sVirt protection for OSP16 VMs due to disabled SELinux2020-07-28

💬Community

2
Bugzilla
CVE-2020-10731 openstack-tripleo-heat-templates: No sVirt protection for OSP16 VMs due to disabled SELinux [openstack-rdo]2020-07-28
Bugzilla
CVE-2020-10731 openstack-tripleo-heat-templates: No sVirt protection for OSP16 VMs due to disabled SELinux2020-05-05
CVE-2020-10731 (CRITICAL CVSS 9.9) | A flaw was found in the nova_libvir | cvebase.io